Analysis

  • max time kernel
    18s
  • max time network
    155s
  • platform
    android_x64
  • resource
    android-x64-20240611-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240611-enlocale:en-usos:android-10-x64system
  • submitted
    11-06-2024 18:14

General

  • Target

    9f1b1be54ffe42b092949f769c403568_JaffaCakes118.apk

  • Size

    4.3MB

  • MD5

    9f1b1be54ffe42b092949f769c403568

  • SHA1

    03e57070b1fb5c5766316f8e8165d647a8fbc056

  • SHA256

    4f090d929e3747308cc3e74ae9e006f4957bfe7a9ba35c4026eef99d741d7a22

  • SHA512

    894a06a331c0acd65a9dcd31072e1b427d1799225300e1359104dfdde6f809fe65ea953843876fca93bf912f7d157e713f61bbcdb47e267d3dec1c47c69dbaa7

  • SSDEEP

    98304:YF0tIlGQNxXXwwi6rwJgetFjgV/2TDzvDaq5FgK:YYQNxXXnnTetFjbDzvFFf

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • ir.basaco.taxionline.jaamejam.passenger
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4986

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    eb73fe10f2b958a5a59ef6841cc031ec

    SHA1

    879c2c4cdf8c98e9ccb1ada09132893a3e8b57f6

    SHA256

    a71a0bfb26dc1f9043f5aa320c641a54ef8b3ce6920f435173888cb5ef27695a

    SHA512

    096ad4c3bd6a8dd7f2894d5c2e298cb1eeefd5d2fe25d96ed8b0be79f6f92a153699247c46a21ff4d4afae2c5ec3d1697a95fd7007d8db63ef524f41bfc77f9a

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    a0ff4dd177f83551ec655d8102d0c639

    SHA1

    66414ea5a163790f5d2cbfa5bf03739d672d9ede

    SHA256

    437abdf60557593e5da3f1b59b95b35f44fdd86aa31c49d8e7802a9210d8d61f

    SHA512

    d09f260fbe59504052d911ac907efc5e9ea023c361e38007bef5bfbcbce8cde562f579f74348d6922354f4fc4b56e700db65866f006411ebe3467f799b7832cd

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    b8214b7761cc58f5aed7e73ac28e890b

    SHA1

    503ec82660f48a738b95778b61c5020dbf702f6f

    SHA256

    985775578687724bf2e9f94143c8ebf03415b3f1234774228007b0b2a6a1dcff

    SHA512

    a6169f27fe5a38a422eda24e93737bb5dc407abb673be1c665e1cb822bb899320061b1fd560adc6452078ce6b3cf380ea1c75ca4446c6e4a455660959a95210c

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    897e4755add41a4e259c3844891b5dd0

    SHA1

    872a6c80eda5e985c04a2bfff02ece52d832551b

    SHA256

    a8d5de7ea8f00e23a711d7e76c37a006c9fd6cc552e79c83a04b6a6f52777916

    SHA512

    5169b2f13f0d072ee37947ce4a7fcd4d9db84eed165db6888fd41bee4ca6d3f27635065ea932fed40518e8d54b76c429a627f03d42eb1451ae1b67accad4ce74

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    334a939b836eeaf0568a553d54f645c6

    SHA1

    c22a8e4e479a4a8a14b0a7f8b9109be615325a28

    SHA256

    7fefedd227166f26d5d5b79b95d8f8bf56a6479ce47fa08c7b8a5019b86d11b4

    SHA512

    855aca2ad074fe0998ced9ff7185e656e46c65d3c315a417cf737b5d142d70827861128e273aea62418d854c310f665a2003f4319e6ae592af0809e01093ed41

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7637fa900d29d6e7df8beb3551adab1b

    SHA1

    06317a0ff889e0f60e499fd27d4f2d3d5b1580e3

    SHA256

    a7f53e525d896c4820b925abd89f674fd5dd09de5b32c77a69aaf19dd6efaa38

    SHA512

    8bb374aeb0ff99d53fe4ab8a346daf6e9d92f9385f34e7dd7a63dc446a199f43dd317f9b25d8b2217408678fd7eef5babac51b5adbe06c234e3ca75019b72f78

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    78ead53726cd59bee7daef08430dbd1e

    SHA1

    fe5b82fdd14a5fb4748a9fa0e6e345442698242b

    SHA256

    b931741e894f83623e01be18ddb9754bbf5b5057b56b372c00b4da3f8f93418d

    SHA512

    8734b51ec29469a012e4c95b939d253ca8f07637391fa15f91735bca0aa59968e928093b029418b9b5529c98db92f99da67004822c9e438679217907fa36fe61

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    2768d60bb9ebf91b3e3d95cbd51e97c6

    SHA1

    45be17e834d31193e5770e61e268c397a8dd22d3

    SHA256

    45bbe7cb70d9e6bff4a24322471ffc7a60510f82d9eda878ac9a05546cc3b3c0

    SHA512

    bd10649f7918d0502781ed2d2e3e96128147061d33572dccfc7c4ce8940f5ac1e97ef6aead72c4d4c5f7656a1e7e3f940a5229a2fa916c7fc3335b46b8983f11

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    cd60407507724124447fc5f7ae374b2f

    SHA1

    ce77b2dec1449385576b196bb72acaa96fc7ab0a

    SHA256

    3d9e85772ce06a73969bd74de14cfcf646a3c784e742c986c691ba8fad1d7a3f

    SHA512

    c1609d7d44ab211803ea645a0f6177bd16d5c24f6653a00946c86403a5029af312b5ea5e105006ce45273fd3de9129ae23245ddeb26bc41a40e0951e4ee2dff4

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    89cb0697b011e6d6d0c1e98dd1593fe4

    SHA1

    e7b4fb5e6d681ac074c074e72ed25437311b7c95

    SHA256

    ed9b6f0d97b0861a4ce4f7572fdb299d1db085b35312fddaa533bcbdcadccab8

    SHA512

    cbbd720b7eccf17fa938a4c6d7e9a02a785ca669b7c17a6bb6da2cf8967fffc562b1282547c88bec2e7dd18dc7271a732d32d8ec443c6e5c227b4e321706668b

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    d7efaed730a7b7f5be4c77b75baea117

    SHA1

    afd2716a9e784b61973c10d2884ee32ff71385f5

    SHA256

    a05b197af9fc7961ee9bd8d5d8a12e0fbc2113b5ce968419dbe35bc5cbc3e3bd

    SHA512

    e296258716400155b1c9f4c4976c285d29703fc27be4f7ed8228fca196a4295bac34398aa471f3e0310dc1821fe6986ffa1b70dcd48bbf1e17a6396776fc3410

  • /data/data/ir.basaco.taxionline.jaamejam.passenger/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    ee190000405f631d2c018593670c7710

    SHA1

    fa05a3e6c4b95f40dd3a273f510593414d237004

    SHA256

    3b6a4cf9765648d5de5f3871101aa17427840e578d3872c8533a0f382acd7f28

    SHA512

    69200cd89d2c1c89d9e92b1e607c12507881aabd3661fa4491e179e0aba79900107ca0d94eb08e6ede3b81827949e7bd4b4c9c8773393f784484e293b10449f4